Fallos del tipo CWE-862

7009 resultados
CVE-2025-15327MEDIUMTanium addressed an improper access controls vulnerability in Deploy.EPSS 0.2%CVE-2026-54844HIGHWordPress CheckView Automated Testing plugin <= 2.1.0 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-69298HIGHWordPress Gauge theme <= 6.56.4 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-45442MEDIUMWordPress Presto Player plugin <= 4.1.3 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-58167HIGHNightingale < 9.0.0-beta.2 - Datasource Credential Disclosure to Low-Privilege UsersEPSS 0.2%CVE-2026-47350MEDIUMTYPO3 CMS - Broken Access Control in DataHandlerEPSS 0.2%CVE-2025-15326MEDIUMTanium addressed an improper access controls vulnerability in Patch.EPSS 0.2%CVE-2026-54828HIGHWordPress Motors plugin <= 1.4.109 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-8614MEDIUMAssistio <= 1.1.2 - Missing Authorization to Authenticated (Subscriber+) Plugin Settings Deletion via assistio_plugin_delete_assistio_settings AJAX ActionEPSS 0.2%CVE-2025-69297HIGHWordPress Aardvark Plugin plugin <= 2.19 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-48883HIGHWordPress WPC Product Bundles for WooCommerce plugin <= 8.5.3 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-48873HIGHWordPress Montonio for WooCommerce plugin <= 10.1.2 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-28193HIGHIn JetBrains YouTrack before 2025.3.121962 apps were able to send requests to the app permissions endpointEPSS 0.2%CVE-2026-40592MEDIUMFreeScout's cross-user undo reply allows mailbox peers to recall another agent's outbound replyEPSS 0.2%CVE-2024-12204MEDIUMCoupon X: Discount Pop Up, Promo Code Pop Ups, Announcement Pop Up, WooCommerce Popups <= 1.3.5 - Missing AuthorizationEPSS 0.2%CVE-2026-56025HIGHWordPress Paymob for WooCommerce plugin <= 4.1.2 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2023-47757MEDIUMWordPress AWeber Plugin <= 7.3.9 is vulnerable to Broken Access ControlEPSS 0.2%CVE-2026-54832HIGHWordPress Gutenverse Companion plugin <= 2.5.0 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-49070HIGHWordPress Knit Pay plugin <= 9.4.0.0 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-0954MEDIUMWP Online Contract <= 5.1.4 - Missing Authorization to Unauthenticated Settings ImportEPSS 0.2%